Network orchestration refers to actions a network controller performs in setting up devices, applications, and services in the network to achieve objectives. It's much like an orchestra conductor's role in directing individual musicians as they perform a piece of music together.
Network orchestration delivers the following benefits:
Most organizations depend on their networks to help run their businesses. Besides connecting diverse users and IoT (Internet of Things) devices, the networks carry data all around the enterprise, manage resources and applications in data centers and clouds, and help to secure all elements against threats. And since business needs change—sometimes quickly—networks should respond quickly and inexpensively.
It's clear that networks expected to do so much are getting more and more difficult to manage.
Any substantial change needs to be reflected in multiple areas. As an example, a seemingly simple objective to set up a new user can require modifications to a lot of switches, routers, firewalls, AAA servers, etc. These changes enable the user to be properly authenticated and authorized and set up with appropriate application-access levels.
Deploying a new application in the public cloud may also require many tasks. The tasks might include dynamically acquiring compute, storage, and network resources in the cloud, provisioning software-defined WAN (SD-WAN) to provide quality of service (QoS) suited to the application's traffic, and configuring switches and access points to enforce access rights.
With proper orchestration, the network can accomplish such complex steps without missing a beat.
As a rule, organizations with 20 or more network devices or 250 or more users can benefit from network orchestration.
Growing organizations that are adding users and IoT devices, hosting a diverse set of users with distinct needs, or using rigorous security requirements for data protection should explore how network orchestration can help them achieve their objectives.
Organizations that have employees who travel frequently, host applications in their data centers, use applications from the public cloud, or experience frequent changes to their networks should also investigate how network orchestration can help them.
Before the days of software-defined networking (SDN) and network automation, all network setup was done manually. Today, of course, manual setup is impossible. Instead, organizations use network controllers and programmable network devices that can systematically execute what's required.
Network controllers are built to orchestrate this execution. They have intimate knowledge of the network's configuration, architecture, infrastructure elements, users and their devices, and traffic patterns. Controllers that follow the intent-based networking model allow input of business objectives that they translate into network actions that they orchestrate.
Network automation refers to performing discrete, fairly simple tasks without manual intervention. Examples of automation include uploading a new configuration file to a switch and updating the switch's software image—jobs that each achieve a single objective.
Orchestration refers to performing a series of related tasks to achieve a more-complex objective. A network controller executes automated tasks in a purposeful order and verifies the success of each task before performing the next one.
As an example, orchestrating a new wireless SSID might consist of identifying and reconfiguring the appropriate access points and wireless LAN controllers, and setting up proper credentials, security mechanisms, allowed bandwidth, etc., for the SSID.
Network management refers to functions for administering and operating networks. A central network management system, usually the network controller, uses its automation and orchestration capabilities to perform these functions. In other words, network orchestration is a subset of network management.
Just as an orchestra requires the musicians, instruments, and conductor to play their parts correctly, network orchestration requires a capable network controller, programmable network devices that communicate with the controller, and network services that can be instantiated as needed.
If your network is fairly modern, you likely already have a set of programmable devices. If not, you can get a quick start by identifying and upgrading the older devices and adding a controller that follows intent-based networking principles.